It has been come down from on high that all self signed certificates must go away. I will need to replace the horizon agent certificates with those generated by our CA server. What are the requirements that must be met to the horizon agents requirements? I would love an all in one cert, but a separate blast cert is fine. Also, would a single Blast certificate do the trick, or should I generate a new cert for each desktop or can I stick one on a golden image? I have a pool for instant clones and a pool of static machines.
The CA team has asked for a list of requirements to create a template. What is needed, Server Authentication, Client, Authentication, Key Encipherment, etc?